$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6d96c622-4e8a-45b0-838c-248133f31be9.roa File: 6d96c622-4e8a-45b0-838c-248133f31be9.roa (raw, json) Hash identifier: 0NnjHbmd4HDks40s7IfXL279bz6jWujjFo4tIgE6vDk= Subject key identifier: BA:56:C5:2E:D8:F9:C0:3A:7C:03:36:99:08:88:DF:DD:2A:70:67:E9 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 68DFD7F66DE8062457596B1B3244C016B8124FBD Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6d96c622-4e8a-45b0-838c-248133f31be9.roa Signing time: Fri 27 Jun 2025 00:30:24 +0000 ROA not before: Fri 27 Jun 2025 00:30:24 +0000 ROA not after: Fri 01 Aug 2025 23:59:59 +0000 asID: 14618 IP address blocks: 44.216.192.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 22 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:df:d7:f6:6d:e8:06:24:57:59:6b:1b:32:44:c0:16:b8:12:4f:bd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 27 00:30:24 2025 GMT Not After : Aug 1 23:59:59 2025 GMT Subject: serialNumber=e1a056ee05328272d538000bce49a7a6370c7fd34f5f573c42fb7ca162bbe9b8, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:f6:46:18:8e:d1:ab:75:3b:33:6f:a2:34:aa: 36:36:c1:d0:87:4c:8a:b9:e9:de:a8:51:63:ff:60: 9e:42:e2:f3:b3:05:ec:9c:a9:20:95:ef:ed:6c:20: d6:fd:a5:ec:b7:1b:71:29:1c:c0:1c:bb:c0:06:a2: 29:dc:32:15:13:57:7d:50:1c:93:78:5a:56:06:46: 3f:f8:49:c3:43:d2:11:22:1c:b1:b5:d6:e9:b3:24: 81:89:18:12:8f:4c:93:ab:23:2f:d0:ec:22:11:7e: bf:fa:27:8b:25:26:f2:78:ec:e6:24:0f:11:e8:fe: ae:dc:5a:80:0d:e1:33:99:25:63:c0:0c:d6:cf:f3: 1d:e4:0b:05:05:17:32:48:dc:77:34:8f:74:63:d3: a6:b9:8a:c0:a7:86:5e:4d:4e:ff:7b:69:63:fe:66: e8:6b:13:6c:89:c9:d4:ea:fb:cb:e3:a7:79:42:f5: 23:04:d5:39:bf:af:fa:94:bc:ae:fe:50:72:ed:e8: 2d:3e:3a:2e:c8:38:37:11:c4:2d:45:5a:21:6a:18: 9f:0d:bb:77:81:40:af:3b:62:44:42:0f:61:a5:3c: 17:62:df:fd:2c:95:8a:38:0c:ff:d3:60:17:62:7e: 37:6e:44:bb:65:b7:8a:a4:81:40:c9:7d:12:eb:c9: e4:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:56:C5:2E:D8:F9:C0:3A:7C:03:36:99:08:88:DF:DD:2A:70:67:E9 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6d96c622-4e8a-45b0-838c-248133f31be9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 44.216.192.0/22 Signature Algorithm: sha256WithRSAEncryption 7f:45:48:80:67:d4:a1:85:69:1a:ac:a9:bf:63:03:db:e3:5f: 7f:0d:8d:48:f7:7e:62:72:bc:fb:71:1d:04:04:1b:cd:17:d8: 86:7e:54:75:e0:bb:f6:f7:b1:d4:38:08:3f:6c:09:e0:f9:50: 01:6c:40:4d:66:2d:d6:79:72:0c:c8:8d:ea:68:47:32:16:e9: 15:02:cc:33:df:39:ad:a3:85:29:d3:c1:96:61:5a:a6:b5:48: 3f:a7:1b:99:71:77:95:98:f5:1a:5c:ed:c4:75:af:75:a1:27: b4:22:69:57:61:22:9a:5e:3d:94:6f:e7:db:75:47:10:c9:14: 06:87:a7:72:a3:0b:26:df:01:14:1e:b2:6a:d3:c2:5a:de:26: 41:f8:be:97:a7:b5:cf:62:7b:d0:fa:58:cd:18:1d:dd:0a:fa: 75:77:22:0a:78:7c:9e:cf:ee:1a:c4:ef:e2:7b:9b:e7:90:35: 99:cc:c9:0e:a6:5b:22:ca:21:44:6a:38:10:aa:27:52:99:24: 88:37:7f:03:d4:18:29:0e:98:4a:bd:21:33:2c:49:6c:38:67: c7:3f:60:0b:c2:f8:35:13:58:88:9c:67:cf:84:ca:49:cc:8a: d4:5f:b5:98:18:75:82:a2:36:f1:ca:15:c1:be:c9:db:41:43: 19:8d:fc:3c -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUaN/X9m3oBiRXWWsbMkTAFrgST70wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjI3MDAzMDI0WhcNMjUwODAxMjM1OTU5 WjB6MUkwRwYDVQQFE0BlMWEwNTZlZTA1MzI4MjcyZDUzODAwMGJjZTQ5YTdhNjM3 MGM3ZmQzNGY1ZjU3M2M0MmZiN2NhMTYyYmJlOWI4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC29kYYjtGrdTszb6I0qjY2wdCHTIq56d6oUWP/YJ5C4vOz BeycqSCV7+1sINb9pey3G3EpHMAcu8AGoincMhUTV31QHJN4WlYGRj/4ScND0hEi HLG11umzJIGJGBKPTJOrIy/Q7CIRfr/6J4slJvJ47OYkDxHo/q7cWoAN4TOZJWPA DNbP8x3kCwUFFzJI3Hc0j3Rj06a5isCnhl5NTv97aWP+ZuhrE2yJydTq+8vjp3lC 9SME1Tm/r/qUvK7+UHLt6C0+Oi7IODcRxC1FWiFqGJ8Nu3eBQK87YkRCD2GlPBdi 3/0slYo4DP/TYBdifjduRLtlt4qkgUDJfRLryeS7AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUulbFLtj5wDp8AzaZCIjf3SpwZ+kwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzZkOTZjNjIyLTRlOGEtNDViMC04MzhjLTI0ODEzM2YzMWJlOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIs2MAwDQYJKoZIhvcNAQELBQADggEBAH9FSIBn1KGFaRqsqb9jA9vjX38N jUj3fmJyvPtxHQQEG80X2IZ+VHXgu/b3sdQ4CD9sCeD5UAFsQE1mLdZ5cgzIjepo RzIW6RUCzDPfOa2jhSnTwZZhWqa1SD+nG5lxd5WY9Rpc7cR1r3WhJ7QiaVdhIppe PZRv59t1RxDJFAaHp3KjCybfARQesmrTwlreJkH4vpentc9ie9D6WM0YHd0K+nV3 Igp4fJ7P7hrE7+J7m+eQNZnMyQ6mWyLKIURqOBCqJ1KZJIg3fwPUGCkOmEq9ITMs SWw4Z8c/YAvC+DUTWIicZ8+EyknMitRftZgYdYKiNvHKFcG+ydtBQxmN/Dw= -----END CERTIFICATE-----Generated at Mon Jul 21 18:13:13 2025 by rpki-client